More

hun3 · 2026-02-25T03:47:07 1771991227

> if your framework's value can be replicated by targeting its test suite,

Side note: this is also why SQLite's full test suite is proprietary / private

hun3 · 2026-02-22T13:37:23 1771767443

Except that merely surfacing them changes their behavior, like how you add that one printf() call and now your heisenbug is suddenly nonexistent

hun3 · 2026-02-21T04:48:11 1771649291

eke*

(yes, I'm dying on this hill)

hun3 · 2026-01-22T16:53:43 1769100823

The size feels like you can almost fit it in a L3 Cache-As-RAM

hun3 · 2026-01-22T11:42:42 1769082162

Sure, as long as you don't run out of `s

hun3 · 2026-01-22T11:38:11 1769081891

Hypervisor as a microkernel

pjmlp · 2026-01-22T14:42:12 1769092932

Yes, there is a certain irony when you look at the cloud workloads with a type 1 hypervisor managing either serverless or container workloads.

hun3 · 2026-01-22T11:36:37 1769081797

Stripping away unused drivers (.config) and other "bloats" can get you surprisingly far.

TacticalCoder · 2026-01-22T18:11:01 1769105461

And most importantly and TFA mentions it several times: stripping unused drivers (and even the ability to load drivers/modules) and bloat brings very real security benefits.

I know you were responding about the boot times but that's just the icing on the cake.

hun3 · 2026-01-31T06:41:41 1769841701

Mostly depends on how bloat correlates to attack surface, but you're right

iberator · 2026-01-22T12:11:27 1769083887

But 150ms? That's boot time for dos or minix maybe (tiny kernels). 1s sure.

balou23 · 2026-01-22T14:11:40 1769091100

FreeBSD did some work to boot in 25ms.

Source: https://www.theregister.com/2023/08/29/freebsd_boots_in_25ms...

deivid · 2026-01-22T13:28:33 1769088513

You can do <10ms. I was working to see if I could get it under 1ms, but my best was 3.5ms

gpderetta · 2026-01-22T16:05:15 1769097915

for example: https://firecracker-microvm.github.io/

hun3 · 2026-01-08T12:44:45 1767876285

Then the question becomes: to what extent do you trust Xen and Qubes RPC?

fsflover · 2026-01-08T16:41:23 1767890483

I do have to somewhat trust Xen, but Qubes' isolation relies on hardware virtualization (VT-d), which statistically has much less security issues than Xen itself. Most Xen advisories do not affect Qubes: https://www.qubes-os.org/security/xsa/

hun3 · 2025-12-23T16:53:49 1766508829

Verified software should satisfy the liveness property; otherwise, an infinite loop that never returns would pass as "correct."

Verifying realtime software goes even further and enforces an upper bound on the maximum number of ticks it takes to complete the algorithm in all cases.

hun3 · 2025-12-23T16:46:24 1766508384

Just append

  X-Crawl-Reason: Finding spare license plates, throttled ONLY to prevent service disruption. To the best of my knowledge, [legalese claiming good faith and compliance to all applicable laws]

(Mandatory disclaimer: IANAL, ignorance is no excuse for breaking laws)